DocumentCode
3275298
Title
Framwork for information security standards storage and retrieval using security patterns
Author
Ruamjinda, Poramaporn ; Prompoon, Nakornthip
Author_Institution
Dept. of Software Eng., Chulalongkorn Univ., Bangkok, Thailand
fYear
2013
fDate
23-25 May 2013
Firstpage
296
Lastpage
300
Abstract
Establishing an information security policy that aligns with the business strategy of the organization usually depends on the stakeholders´ expertise and experience. Due to the human factor constraint, this may lead to an incomplete and unclear policy. This research proposes a framework for the storage and retrieval of information security standards using information retrieval principles and security patterns based on security patterns, keyword search and the relationship among security patterns. The vector space model is used to compute the similarity between user queries and parts of security standard documents to present results relevant to the users´ needs. Recall, precision and F-measure are used to evaluate the efficiency of the proposed methods.
Keywords
document handling; human factors; information systems; query processing; security of data; vectors; F-measure; business strategy; human factor constraint; information retrieval principles; information security policy; information security standard retrieval framework; information security standard storage framework; information systems; keyword search; precision measure; recall measure; security patterns; similarity computation; user queries; vector space model; IEC standards; ISO standards; Lead; Security; User interfaces; Information Retrieval; Information Security; Security Pattern; Security Standard;
fLanguage
English
Publisher
ieee
Conference_Titel
Software Engineering and Service Science (ICSESS), 2013 4th IEEE International Conference on
Conference_Location
Beijing
ISSN
2327-0586
Print_ISBN
978-1-4673-4997-0
Type
conf
DOI
10.1109/ICSESS.2013.6615309
Filename
6615309
Link To Document